MEGA Chrome Extension Compromised to Steal Users’ Monero

The MEGA extension for Chrome has been hacked and now can steal Monero from users’ computers, along with other sensitive data.

The MEGA Chrome extension version 3.39.4 has been compromised and can now steal user’s Monero in addition to other sensitive information, according to recent posts on Twitter and Reddit. MEGA Chrome extension is a tool that claims to improve browser performance by reducing page loading times, in addition to providing a secure cloud storage service.

The official Twitter account of Monero (XMR) posted a warning, advising XMR holders to steer clear of MEGA.

PSA: The official MEGA extension has been compromised and now includes functionality to steal your Monero: https://t.co/vzWwcM9E5k

Redditor u/gattacus posted on Monero’s official Reddit page that they became suspicious of foul play following a request for new permission following an extension update:

“There was an update to the extension and Chrome asked for new permission (read data on all websites). That made me suspicious and I checked the extension code locally (which is mostly javascript anyways). MEGA also has the source code of the extension on github […] There was no commit recently. To me it looks either their Google Webstore account was hacked or someone inside MEGA did this. Pure speculation though.”

At press time, the MEGA Chrome extension was unavailable for download on the Chrome Webstore. Clicking the link for the extension resulted in a 404 error.

XMR, which — despite some claims to the contrary — is lauded as a private and “untraceable” cryptocurrency, has been the target of illicit and illegal activities in the crypto space.

In several instances, cryptojackers have used the computer power of web visitors to secretly mine XMR. In June, a McAfee report found 2.9 million samples of coin miner malware, which works by using Coinhive code — a program designed to mine XMR on a web browser.

In September last year, Cointelegraph reported that a group of Russian hackers installed crypto mining malware on 9,000 computers over the course of two years. The hackers were hijacking machines to mine XMR and Zcash (ZEC), among other cryptocurrencies. Total earnings were estimated to be $209,000 for Monero alone.

XMR is the tenth biggest cryptocurrency, with market capitalization of over $2 billion at press time. The cryptocurrency is currently trading over $138, having gained 0.47 percent over the last 24 hours according to CoinMarketCap.

This post was originally published on this site The blockchain-based shipping solution from IBM and Maersk will be tested at Canada’s border agency. The Canada Border Services Agency (CBSA) has become the latest entity [...]

This post was originally published on this site A group of senators has introduced a vote of no confidence in the administration of Marshall Islands president Heine due to plans of issuing a national digital [...]

This post was originally published on this site As part of its latest Pulse of Fintech report, global auditing giant KPMG has acknowledged that Blockchain has drawn “significant attention” and is “moving beyond experimentation” in [...]

This post was originally published on this site U.S. Senator Elizabeth Warren, who is also known for her criticism of cryptocurrencies, has jumped into the 2020 presidential race. United States Senator and cryptocurrency critic Elizabeth [...]

This post was originally published on this siteAccording to Pantera Capital Management’s Dan Morehead, now is a good time to buy Bitcoin and other cryptocurrencies. Here’s why. ‘It’s Much Cheaper to Buy Now’ On Thursday — [...]